Skip to main content

How to apply Basic Authentication In Web API.

Here, I will explain how to maintain security in webapi

Step : 1 Create a method for validate loginname and tokenkey. if exists then return true otherwise return false. 
public static bool Vaidatecredentials(string loginname, string tokenkey)  
{  
    // Check if it is valid credential  
    if(true)//Check login name and token key exists in DB(loginname, password))  
    {  
        return true;  
    }
   else
    {  
        return false;  
    }              
}

Step : 2 add a class, which is used as Authorization filter. The class BasicAuthenticationAttribute inherits from BasicAuthenticationAttribute abstarct class. 
public class BasicAuthenticationAttribute : AuthorizationFilterAttribute  
{  
    public override void OnAuthorization(System.Web.Http.Controllers.HttpActionContext actionContext)  
    {  
        if (actionContext.Request.Headers.Authorization == null)  
        {  
            actionContext.Response = actionContext.Request.CreateResponse(HttpStatusCode.Unauthorized);  
        }  
        else  
        {  
            // accept header parameters  
            string Parameters = actionContext.Request.Headers.Authorization.Parameter;   
  
            // Gets loginname and tokenkey  
            string loginname = Parameters.Split(':')[0];  
            string tokenkey = Parameters.Split(':')[1];  
  
            // Validate loginname and tokenkey  
            if (!Vaidatecredentials(loginname, tokenkey))  
            {  
                // returns unauthorized error 401
                actionContext.Response = actionContext.Request.CreateResponse(HttpStatusCode.Unauthorized);  
            }  
        }  
  
        base.OnAuthorization(actionContext);  
    }  
}

Step : 3 Now we need to register authorization filter. we can register at controller level. 
 
[BasicAuthentication]  
public class BlogController : ApiController  
{  
    // Add your code here  
}

Step: 4 Call Web API using AJAX request. 
$.ajax({  
    url: 'http://localhost:9000/api/dcs',  
    type: "POST",  
    contentType: "application/json",  
    data: JSON.stringify(testdata),  
    dataType: "json",  
    headers: { 'Authorization' :'Basic ' + loginname + ':' + tokenkey) },  
    success: function (result) {  
        
    },  
    error: function (err) {  
        
    }  
});

Labels:
Location: United States

Comments

Post a Comment

Popular posts from this blog

How To See Logs Of Dropped Tables From The Database in MS SQL.

Here, I will explain you how you can see logs of users. Step 1 : First, create a new database with name "test". Step 2 : Create a new table. Step 3 : Now, go and drop the table by running the following command. Step 4 : Now, select your database under Object Explorer and go to Reports >> Standard Reports >> Schema Changes History. Step 5 : You will then see the schema change history. The report will show you who has dropped this table. Finally, you can locate the user activity with the help of log.
Post a Comment
Read more

How To Deploy .net Core Application On Linux

Here, I can explain steps to deploy .net core application on linux machine. Step 1 - Publish your .net Core application: First, create a .net core application on VS; you can make an MVC project or Web API project and if you already have an existing project, then open it. Right Click on your project Click on publish Now create a new publish profile, and browse the folder where you want to publish your project dll Click on publish so it will create your dll in the folder Step 2 - Install required .net Module on Linux: Now we have our web application dll and now we need to host it on the Linux environment. First, we need to understand how the deployment works in Linux. .Net applications run on Kestrel servers and we run Apache or Nginx server in Linux environments, which acts as a proxy server and handles the traffic from outside the machine and redirects it to the Kestrel server so we will have Apache or Nginx server as the middle layer. In this article, we will use Apache as a proxy ser
Post a Comment
Read more

List Of Commonly Used Angular Commands

1) To get the npm version,    npm -v 2) To get the node version,    node -v 3) To get the Angular version,    ng v  4) To get the Jasmine version,    jasmine -v  5) To get the Karma version,    karma --version  6) To install Angular CLI,    npm install @angular/cli -g   npm install @angular/cli 7) To install the next version of Angular CLI, v   npm install @angular/cli@next  8) To get help in the terminal,    ng help 9) To create a new project in Angular,    ng new project-name  10) To skip external dependencies while creating a new project,    ng new project-name --skip-install  11) To run the Angular project,   ng serve (or) npm start (or) ng serve --force  12) Dry Run,   ng new project-name --dry-run 13) To create a new component in the Angular Project,   ng generate component component-
Post a Comment
Read more